kelin
5df66a3923
- Streamline variable organization and formatting - Reduce redundant comments and improve clarity - Maintain all required variables for each stack
207 lines
6.8 KiB
Plaintext
207 lines
6.8 KiB
Plaintext
########################################################
|
|
#### EZ-Homelab .env template file ####
|
|
#### EZ MODE: just run ez-homelab.sh ####
|
|
########################################################
|
|
|
|
########################################################
|
|
# #### REQUIRED CONFIGURATION ####
|
|
|
|
# Required for file permissions (get with: id -u and id -g)
|
|
TZ=America/New_York
|
|
PUID=1000
|
|
PGID=1000
|
|
|
|
# This Server's IP and Hostname
|
|
SERVER_IP=
|
|
SERVER_HOSTNAME=
|
|
|
|
# Domain Configuration
|
|
DUCKDNS_SUBDOMAINS=
|
|
DUCKDNS_TOKEN=
|
|
DOMAIN=${DUCKDNS_SUBDOMAINS}.duckdns.org
|
|
|
|
# Default credentials (used by multiple services)
|
|
# For better security: replace each ${DEFAULT_PASSWORD} with unique values
|
|
DEFAULT_USER=
|
|
DEFAULT_PASSWORD=
|
|
DEFAULT_EMAIL=
|
|
|
|
# FOLDER PATHS
|
|
STACKS_DIR=/opt/stacks # for Dockge
|
|
PROJECTS_DIR=${STACKS_DIR} # for Arcane
|
|
MEDIA_DIR=/mnt/media # Large media files on separate drive
|
|
DOWNLOAD_DIR=/mnt/downloads # Downloads on separate drive
|
|
|
|
# PROJECTDIR=~/projects # User's projects folder
|
|
|
|
# ########## END REQUIRED CONFIGURATION ####
|
|
########################################################
|
|
|
|
########################################################
|
|
# #### OPTION 3: ADDITIONAL SERVER ####
|
|
CORE_SERVER_IP=
|
|
CORE_SERVER_HOSTNAME=
|
|
CORE_SERVER_USER=${DEFAULT_USER}
|
|
CORE_SERVER_PASSWORD=${DEFAULT_PASSWORD}
|
|
# #### END ADDITIONAL SERVER ####
|
|
########################################################
|
|
|
|
########################################################
|
|
# #### VPN CONFIGURATIONS ####
|
|
SURFSHARK_USERNAME=
|
|
SURFSHARK_PASSWORD=
|
|
VPN_SERVER_COUNTRIES=Netherlands # Preferred VPN server location
|
|
# #### END VPN CONFIGURATIONS ####
|
|
########################################################
|
|
|
|
########################################################
|
|
# #### EMAIL CONFIGURATIONS ####
|
|
SMTP_EMAIL_PASSWORD=
|
|
SMTP_EMAIL_SERVER=smtp.gmail.com
|
|
SMTP_EMAIL_PORT=587
|
|
SMTP_EMAIL_FROM=${DEFAULT_EMAIL}
|
|
SMTP_EMAIL_SECURITY=starttls
|
|
ACME_EMAIL=${DEFAULT_EMAIL}
|
|
SMTP_USERNAME=${SMTP_EMAIL_FROM}
|
|
SMTP_PASSWORD=${SMTP_EMAIL_PASSWORD}
|
|
# #### END EMAIL CONFIGURATIONS ####
|
|
########################################################
|
|
|
|
########################################################
|
|
# ########### DELETE AFTER DEPLOYMENT ###########
|
|
# #### Used by ez-homelab.sh & deploy scripts ####
|
|
# #### Unused by the actual containers ####
|
|
|
|
# Public SSH key from the pc used to access the homelab
|
|
# Will be added to the admin user's authorized_keys
|
|
# #### DO NOT INCLUDE YOUR PRIVATE KEY ####
|
|
ADMIN_SSH_PUB_KEY=
|
|
|
|
# Authelia Admin Credentials
|
|
ADMIN_EMAIL=${DEFAULT_EMAIL}
|
|
AUTHELIA_ADMIN_USER=${DEFAULT_USER}
|
|
AUTHELIA_ADMIN_EMAIL=${DEFAULT_EMAIL}
|
|
AUTHELIA_ADMIN_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
# Use this command to generate AUTHELIA_ADMIN_PASSWORD_HASH:
|
|
# docker run --rm authelia/authelia:latest authelia crypto hash generate argon2 --password "YOUR_PASSWORD_HERE"
|
|
AUTHELIA_ADMIN_PASSWORD_HASH=
|
|
|
|
# Use this command to generate each secret
|
|
# openssl rand -hex 64
|
|
AUTHELIA_JWT_SECRET=
|
|
AUTHELIA_SESSION_SECRET=
|
|
AUTHELIA_STORAGE_ENCRYPTION_KEY=
|
|
|
|
# Arcane secrets
|
|
ARCANE_ENCRYPTION_KEY=
|
|
ARCANE_JWT_SECRET=
|
|
# ########## END DELETE AFTER DEPLOYMENT ####
|
|
########################################################
|
|
|
|
|
|
########################################################
|
|
# #####################################################
|
|
# #### Application Specific Configurations ####
|
|
# #####################################################
|
|
|
|
# #####################################################
|
|
# #### Bitwarden #####
|
|
# #### SET TO FALSE AFTER CREATING USERS ####
|
|
|
|
BITWARDEN_SIGNUPS_ALLOWED=true
|
|
|
|
BITWARDEN_ADMIN_TOKEN=${DEFAULT_PASSWORD}
|
|
BITWARDEN_INVITATIONS_ALLOWED=true
|
|
SMTP_HOST=${SMTP_EMAIL_SERVER}
|
|
SMTP_FROM=${SMTP_EMAIL_FROM}
|
|
SMTP_PORT=${SMTP_EMAIL_PORT}
|
|
SMTP_SECURITY=${SMTP_EMAIL_SECURITY}
|
|
|
|
# #####################################################
|
|
# #### Bookstack #####
|
|
|
|
BOOKSTACK_DB_PASSWORD=${DEFAULT_PASSWORD}
|
|
BOOKSTACK_DB_ROOT_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### Code Server #####
|
|
|
|
CODE_SERVER_PASSWORD=${DEFAULT_PASSWORD}
|
|
CODE_SERVER_SUDO_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### Form.io #####
|
|
|
|
FORMIO_JWT_SECRET=${DEFAULT_PASSWORD}
|
|
FORMIO_DB_SECRET=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### Gitea #####
|
|
|
|
GITEA_DB_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### Grafana #####
|
|
|
|
GRAFANA_ADMIN_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### Homepage #####
|
|
|
|
# comma separated list NO SPACES!!!
|
|
HOMEPAGE_ALLOWED_HOSTS=homepage.${DOMAIN},${SERVER_IP}:3003
|
|
|
|
# #####################################################
|
|
# #### Jupyter #####
|
|
|
|
JUPYTER_TOKEN=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### MediaWiki #####
|
|
|
|
MEDIAWIKI_DB_PASSWORD=${DEFAULT_PASSWORD}
|
|
MEDIAWIKI_DB_ROOT_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### Nextcloud #####
|
|
|
|
NEXTCLOUD_ADMIN_USER=${DEFAULT_USER}
|
|
NEXTCLOUD_ADMIN_PASSWORD=${DEFAULT_PASSWORD}
|
|
NEXTCLOUD_DB_PASSWORD=${DEFAULT_PASSWORD}
|
|
NEXTCLOUD_DB_ROOT_PASSWORD=${DEFAULT_PASSWORD}
|
|
NEXTCLOUD_DIR=./nextcloud/data
|
|
# #####################################################
|
|
# #### Pi-hole #####
|
|
|
|
PIHOLE_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### qBittorrent #####
|
|
|
|
QBITTORRENT_USER=admin
|
|
QBITTORRENT_PASS=${DEFAULT_PASSWORD}
|
|
|
|
# #####################################################
|
|
# #### SURFSHARK OPTIONAL CONFIGURATIONS ####
|
|
|
|
# Surfshark WireGuard (OPTIONAL - Advanced users only)
|
|
# Get WireGuard details from Surfshark dashboard
|
|
# SURFSHARK_PRIVATE_KEY=your-wireguard-private-key
|
|
# SURFSHARK_ADDRESSES=10.14.0.2/16
|
|
|
|
# #####################################################
|
|
# #### Watchtower #####
|
|
|
|
# WATCHTOWER_NOTIFICATION_URL=
|
|
|
|
# #####################################################
|
|
# #### WordPress #####
|
|
|
|
WORDPRESS_DB_PASSWORD=${DEFAULT_PASSWORD}
|
|
WORDPRESS_DB_ROOT_PASSWORD=${DEFAULT_PASSWORD}
|
|
|
|
|
|
|
|
TDARR_TRANSCODE_DIR=./tdarr/transcode_cache
|
|
UNMANIC_TRANSCODE_DIR=./unmanic/cache |